Make Your First Signing Request

Use POST /qes-sign-xml when your backend has an XML document that must be signed through a qualified-signature workflow.

Request

BASH

curl -X POST "https://qes-socket.domain.com/api/qes-sign-xml" \
  -H "Content-Type: application/json" \
  -H "X-API-Key: your-tenant-api-key" \
  -d '{
    "id": "9a6f6dbe-6ec4-4676-9f79-657af79d9a31",
    "qesId": "84ad4b62-d1eb-4c1b-9f71-09136fd6d450",
    "xml": "<Invoice>...</Invoice>",
    "profile": "XAdES_BASELINE_B"
  }'

Response

The successful response returns the signed XML, the device that completed the operation, and completion metadata.

Practical handling

Use a stable id from your own system so retries can be correlated. Store the response with the related business document and audit record.